This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json) Hash identifier: YD1bxxRYLwsaUMi7vzlp6gV8vwdSzYwCypk4+y+RhG8= Subject key identifier: A4:00:2F:01:FF:70:BC:18:72:00:BE:38:0F:CC:8C:96:DC:95:F2:E2 Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66 Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066 Certificate serial: 019BF50702592C660A6FD479D83C469F93BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft Manifest number: 14C7 Signing time: Sun 25 Jan 2026 12:00:35 +0000 Manifest this update: Sun 25 Jan 2026 12:00:35 +0000 Manifest next update: Mon 26 Jan 2026 12:00:35 +0000 Files and hashes: 1: bZqOUIU_1IqMOnS3XXUrS60GrpM.roa (hash: LFmDzSYfJ7mk0ygK5bmtim3i/wVzAaEknmN17hltFu0=) 2: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: PHrlp3IXD7dCt/ELCabIfgYeCieVQAnMVxcdTawXnv4=) 3: qxRVneBb_uUd_NsM3Vb645rM-7A.roa (hash: G6Y/r+hYk+mMByjpNJdV1U1ctvTf0yt3EQ8Sq5betwQ=) 4: sPMgSkKer_29geM5-1T1-keLLGw.roa (hash: 4QbBQJWJYkQw7XP4lLebE7Woxf8+43i+sSWLrzO/9j0=) 5: tP-zd4fvUG5Ghj_hj4jy-iA0H5M.roa (hash: dncyiHvUZh8Otlmg0Vs+Wpy7Azdi/J7dNn/2EsRGlWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:02:59:2c:66:0a:6f:d4:79:d8:3c:46:9f:93:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066 Validity Not Before: Jan 25 12:00:35 2026 GMT Not After : Jan 26 12:00:35 2026 GMT Subject: CN=a4002f01ff70bc187200be380fcc8c96dc95f2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7e:d8:fe:e6:36:fd:d4:61:1a:3f:cc:6a:0f: eb:99:4d:b8:60:07:fa:ca:47:2d:c5:1f:bd:7f:3b: 02:7a:2f:27:98:1e:3b:5a:64:54:5b:81:82:b2:e6: 79:bf:28:1a:3e:34:33:99:41:76:75:06:c2:dc:e5: 02:e6:62:53:b9:9e:33:86:a1:4a:b5:6c:e1:c5:7b: 07:00:10:27:6c:e3:bd:45:72:aa:b4:0a:4d:ff:86: b0:e5:7e:01:41:ea:25:ef:81:74:fb:e9:b5:17:71: 27:70:50:36:bf:8d:2e:58:a2:a1:4f:33:02:ce:d9: bc:ef:e5:81:22:08:ea:d3:55:27:cd:d6:e4:0d:48: 38:dd:df:f9:a7:21:13:47:a6:7d:ce:46:71:58:ed: 89:de:e4:d3:7b:8e:eb:d5:6f:87:9e:0d:b9:c0:ec: 1d:f9:e4:bb:4b:73:14:2c:9c:a0:a3:1f:6b:2c:66: d5:c9:47:ec:b5:c4:0c:7b:c7:2c:05:42:56:e3:7b: af:56:cc:c0:b9:f6:30:0d:20:f5:07:64:c3:be:ba: 15:a0:e4:4c:c4:6a:d1:fb:66:94:b4:cf:9b:d0:ec: 08:70:4a:00:63:1a:72:cf:94:c8:08:80:bd:e6:87: 00:0f:e7:7e:a6:d6:81:d0:69:f3:08:01:fd:62:ca: ab:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:00:2F:01:FF:70:BC:18:72:00:BE:38:0F:CC:8C:96:DC:95:F2:E2 X509v3 Authority Key Identifier: keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:b8:85:8b:09:5a:15:8e:e0:b0:79:37:e0:ee:07:ed:12:df: 7e:14:80:3e:c2:98:26:31:9a:17:10:db:5c:06:40:1c:91:c6: 63:89:af:2c:bb:b9:87:c7:07:eb:84:fd:7f:d0:5a:28:73:2e: ed:55:33:ac:89:a6:cc:09:98:58:71:44:46:e0:f0:83:cd:ea: 58:df:8c:c8:2d:89:0e:b3:63:01:d1:cf:95:f1:fb:28:47:0f: c8:9c:17:6d:5e:c8:5c:2f:c7:94:c9:f8:3f:d4:5c:28:b1:29: 7c:7e:49:e0:12:42:9f:de:eb:38:45:40:fa:a5:9d:ef:97:e2: c5:0b:3d:06:2f:5e:9a:b9:8a:1e:18:1c:dc:ea:f9:3e:d9:a5: b2:39:6f:5d:87:f6:97:07:7b:5b:42:19:b8:e7:5f:bc:38:d7: 8b:7d:bc:e1:98:6e:54:70:77:07:43:c6:dc:ed:c0:55:c9:b3: 7d:29:bf:da:41:55:80:40:84:04:31:7d:76:55:3d:10:16:43: e5:53:59:d6:b2:e3:90:f9:70:54:89:b7:1d:e8:c9:e9:c3:42: 4c:55:42:2f:4f:6a:08:4c:65:a1:2e:60:04:53:d9:29:7f:69: 8a:9d:7c:06:a4:c5:89:ef:20:c4:2b:41:c1:46:87:05:81:2a: f5:b4:fe:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1BwJZLGYKb9R52DxGn5O/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNTRjNDc2M2VhMDE4YzNkYzcwMjAzZDA0ZWZlNzFmZDRi MWIwNjYwHhcNMjYwMTI1MTIwMDM1WhcNMjYwMTI2MTIwMDM1WjAzMTEwLwYDVQQD EyhhNDAwMmYwMWZmNzBiYzE4NzIwMGJlMzgwZmNjOGM5NmRjOTVmMmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAln7Y/uY2/dRhGj/Mag/rmU24YAf6 ykctxR+9fzsCei8nmB47WmRUW4GCsuZ5vygaPjQzmUF2dQbC3OUC5mJTuZ4zhqFK tWzhxXsHABAnbOO9RXKqtApN/4aw5X4BQeol74F0++m1F3EncFA2v40uWKKhTzMC ztm87+WBIgjq01UnzdbkDUg43d/5pyETR6Z9zkZxWO2J3uTTe47r1W+Hng25wOwd +eS7S3MULJygox9rLGbVyUfstcQMe8csBUJW43uvVszAufYwDSD1B2TDvroVoORM xGrR+2aUtM+b0OwIcEoAYxpyz5TICIC95ocAD+d+ptaB0GnzCAH9YsqreQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQALwH/cLwYcgC+OA/MjJbclfLiMB8GA1UdIwQY MBaAFKpUxHY+oBjD3HAgPQTv5x/UsbBmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQt ZGUzNzY3M2M0MDljLzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQtZGUzNzY3M2M0MDlj LzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcbiFiwla FY7gsHk34O4H7RLffhSAPsKYJjGaFxDbXAZAHJHGY4mvLLu5h8cH64T9f9BaKHMu 7VUzrImmzAmYWHFERuDwg83qWN+MyC2JDrNjAdHPlfH7KEcPyJwXbV7IXC/HlMn4 P9RcKLEpfH5J4BJCn97rOEVA+qWd75fixQs9Bi9emrmKHhgc3Or5PtmlsjlvXYf2 lwd7W0IZuOdfvDjXi3284ZhuVHB3B0PG3O3AVcmzfSm/2kFVgECEBDF9dlU9EBZD 5VNZ1rLjkPlwVIm3HejJ6cNCTFVCL09qCExloS5gBFPZKX9pip18BqTFie8gxCtB wUaHBYEq9bT+Cw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:46:24 2026 by rpki-client